Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36CA351/D8E6C5EAC2E611EE8B90697B775412E6/F315025EC2ED11EE9ED87287775412E6.roa
File: F315025EC2ED11EE9ED87287775412E6.roa (raw, json)
Hash identifier: s3ZFSy7lql6H/Yuhjc2D866FBoMmtIe235QDa55S5lU=
Subject key identifier: 69:6B:B7:5F:3C:20:A1:82:62:A1:42:06:06:59:EC:60:75:65:13:71
Certificate issuer: /CN=F36CA351AF/serialNumber=58DA3BE331A612AAAE4F6A30637704063AC3DD42
Certificate serial: 0B
Authority key identifier: 58:DA:3B:E3:31:A6:12:AA:AE:4F:6A:30:63:77:04:06:3A:C3:DD:42
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/WNo74zGmEqquT2owY3cEBjrD3UI.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36CA351/D8E6C5EAC2E611EE8B90697B775412E6/F315025EC2ED11EE9ED87287775412E6.roa
Signing time: Sat 03 Feb 2024 23:42:54 +0000
ROA not before: Sun 04 Feb 2024 23:42:50 +0000
ROA not after: Tue 31 Dec 2024 23:42:50 +0000
asID: 328988
IP address blocks: 102.218.48.0/22 maxlen: 22
102.218.48.0/24 maxlen: 24
102.218.49.0/24 maxlen: 24
102.218.50.0/24 maxlen: 24
102.218.51.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36CA351/D8E6C5EAC2E611EE8B90697B775412E6/WNo74zGmEqquT2owY3cEBjrD3UI.crl
rsync://rpki.afrinic.net/repository/member_repository/F36CA351/D8E6C5EAC2E611EE8B90697B775412E6/WNo74zGmEqquT2owY3cEBjrD3UI.mft
rsync://rpki.afrinic.net/repository/afrinic/WNo74zGmEqquT2owY3cEBjrD3UI.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 11 (0xb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36CA351AF/serialNumber=58DA3BE331A612AAAE4F6A30637704063AC3DD42
Validity
Not Before: Feb 4 23:42:50 2024 GMT
Not After : Dec 31 23:42:50 2024 GMT
Subject: CN=65becf7e-513c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:10:56:45:ef:74:91:9d:07:d8:12:07:95:00:
9a:aa:8b:34:4b:ff:e1:bd:e4:ae:78:05:c0:cb:86:
e4:32:6d:0b:39:d5:60:00:32:1b:53:aa:f0:6f:69:
99:46:22:ee:63:f5:c5:b2:ab:81:04:5b:ee:2f:23:
c4:d0:7f:39:c6:e2:c8:7b:79:84:e1:53:e5:f9:a0:
ea:ca:80:38:98:32:02:c1:06:54:1c:de:6d:f0:53:
8f:a3:b6:18:34:63:5a:32:7d:14:08:86:06:fb:7b:
2d:fb:aa:57:f9:0b:65:97:2c:da:0c:d4:c8:ed:b8:
df:9a:84:ea:56:86:fe:1d:51:1d:8d:8b:56:71:cb:
60:96:29:5f:50:e1:85:2f:b3:0d:f1:e7:05:7e:8b:
65:52:d7:f7:6a:98:9f:f5:45:01:f6:81:b8:2a:16:
b6:9c:38:74:fe:3e:82:41:12:3d:cc:ae:e8:f8:da:
c3:c9:8c:66:78:d0:f0:b7:4c:8e:65:fb:c0:44:81:
24:4e:56:36:ce:cd:27:71:ae:0a:84:09:76:0e:f7:
46:a8:1d:ae:cf:a9:fa:f1:e0:65:c7:78:ed:eb:8b:
fa:ec:e9:fc:08:a2:50:4a:c7:6a:db:d3:3a:71:58:
4b:78:43:05:c1:f2:98:ca:ee:d2:35:9d:79:f1:19:
25:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:6B:B7:5F:3C:20:A1:82:62:A1:42:06:06:59:EC:60:75:65:13:71
X509v3 Authority Key Identifier:
keyid:58:DA:3B:E3:31:A6:12:AA:AE:4F:6A:30:63:77:04:06:3A:C3:DD:42
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36CA351/D8E6C5EAC2E611EE8B90697B775412E6/WNo74zGmEqquT2owY3cEBjrD3UI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/WNo74zGmEqquT2owY3cEBjrD3UI.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36CA351/D8E6C5EAC2E611EE8B90697B775412E6/F315025EC2ED11EE9ED87287775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.218.48.0/22
Signature Algorithm: sha256WithRSAEncryption
0c:00:a0:01:d1:26:91:61:15:93:f9:c3:e9:a9:86:ba:2b:3e:
00:46:b5:c3:aa:d2:72:10:b7:2d:ff:03:a6:88:9a:67:9b:d3:
a9:74:71:e4:63:fe:99:ad:dd:bd:f3:1b:90:54:37:77:80:24:
8b:43:65:21:aa:1a:da:d5:5f:04:eb:c8:d0:2b:00:23:b4:35:
59:a9:37:4c:a4:ae:75:ce:61:dc:41:a3:0a:30:a0:a8:80:52:
ea:0c:d9:ca:c8:92:d5:41:87:fe:ca:5e:28:c3:15:76:db:10:
8d:98:a5:cf:09:ff:33:01:9b:d6:a9:e7:f9:9f:f5:fc:d1:13:
97:89:9c:d6:0d:0b:f1:99:1a:5f:a3:b8:07:89:c3:78:4c:45:
ba:0d:ee:e0:43:fe:38:62:e2:68:c1:24:5f:1a:24:2d:0b:cc:
12:2b:78:bd:21:fb:04:f6:0a:a5:5c:02:77:d9:5a:ce:ef:24:
d8:66:c6:ef:78:d5:c9:70:00:2e:e5:23:31:87:2a:8a:a6:8d:
b3:92:33:a0:d8:59:dd:a9:2d:be:c4:33:d5:08:2b:d3:a7:9f:
b9:7c:62:2b:87:2a:37:09:43:d7:38:29:6c:a5:41:4e:3a:43:
f3:61:a0:bb:b2:0d:0e:86:ba:7c:f5:b8:4f:f9:f2:12:e4:f3:
3e:41:85:24
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 03:52:59 2024 by rpki-client on console-fra.rpki-client.org